# My Wallet Air Security Bounty Program We're inviting security researchers to audit My Wallet Air—our new native app for iOS and Android. Prize fund: Up to $50,000. Deadline: 1 August 2025 at 14:00 CET. - URL: https://mywallet.io/en/blog/MyTonWallet-Air-Security-Bounty-Program - Markdown: https://mywallet.io/en/blog/MyTonWallet-Air-Security-Bounty-Program.md - Published: 2025-07-21T12:00:00+0000 --- # My Wallet Air Security Bounty Program For ethic hackers & security researchers.\ **Prize fund:** Up to $50,000\ **Deadline:** 1 August 2025 at 14:00 CET ### 1. The Task We're inviting security researchers to audit My Wallet Air—our new native app for iOS and Android. Your mission: find and responsibly disclose security vulnerabilities that could compromise user assets, privacy, or overall security through code analysis. This is a public security bounty program focused on identifying critical, high-impact issues before full release. #### How to Access the Code? iOS and Android source code for My Wallet Air [is available here](https://github.com/mytonwallet-org/MyTonWallet-Air). ### 2. What Counts as a Valid Vulnerability? We're specifically interested in serious vulnerabilities such as: - Unauthorized access to wallets or private data - Bypassing authentication or authorization flows - Transaction forgery or signing without user consent - Cryptographic failures - Anything leading to token theft or DoS Minor UI glitches, layout issues, typos, performance lags, or non-security-related behavior should be submitted via the [QA Contest](https://mywallet.io/en/blog/MyTonWallet-Air-QA-Contest). ### 3. Submission Guidelines Please include in your report: - Clear description of the vulnerability - Code location and affected components - Clear reproduction steps or proof‑of‑concept - Potential impact - Screenshots or other content if applicable Submit your reports directly to [our team](https://t.me/mysafewallet) for all security disclosures. ### 4. Evaluation Criteria Our team will assess each submission based on: - Severity and potential impact - Reproducibility and clarity of reporting - Quality of documentation or proof‑of‑concept - Responsible disclosure and ethical conduct Only valid, original, and verifiable submissions will be considered for rewards. ### 5. Rewards & Contact Rewards will be distributed based on the severity and quantity of vulnerabilities found. If multiple participants discover the same vulnerability, the reward will be distributed as follows: 50% to the first reporter, and the remaining 50% shared equally among all reporters of the same issue. Send your reports directly to [our team](https://t.me/mysafewallet)—top submissions will be rewarded accordingly. *** #### Learn more about My Wallet ### 🦄 About My Wallet **My Wallet** is a secure and powerful multichain wallet for **TON**, **TRON**, **Solana**, **Ethereum**, **Base**, and other major networks. Learn more: [**https://mywallet.io**](https://mywallet.io/). ![About My Wallet](https://mywallet.io/img/og-image.png) Useful links: 📖 [**Help Center**](https://help.mywallet.io/) • 💬 [**24/7 Customer Support**](http://t.me/mysupport) Socials: 🇺🇸 [**Telegram**](https://t.me/mywalleteng) • 🇷🇺 [**Telegram**](https://t.me/mywalletrus) • [**𝕏 (Twitter)**](https://x.com/mywallet_io) 💎 [**Get My Wallet**](http://get.mywallet.io/)